Lock down Prometheus Alertmanager and NATS ports by default (#378)

* Stop exposing Alertmanager and NATS ports

This commit stops exposing the Prometheus Alertmanager and NATS ports by
default on Swarm.

The respective sections are commented out with a note on re-enabling
them.

Signed-off-by: John McCabe <john@johnmccabe.net>

* Revert queue-worker dev tag in yaml

Signed-off-by: John McCabe <john@johnmccabe.net>

docker-compose.armhf.yml

@@ -45,8 +45,10 @@ services:
             - '-config.file=/alertmanager.yml'
         networks:
             - functions
-        ports:
+        # Uncomment the following port mapping if you wish to expose the Prometheus
-            - 9093:9093
+        # Alertmanager UI.
+        # ports:
+        #     - 9093:9093
         deploy:
             placement:
                 constraints: [node.role == manager]

docker-compose.extended.armhf.yml

@@ -27,9 +27,11 @@ services:
 
     nats:
         image: nats-streaming:0.6.0
-        ports:
+        # Uncomment the following port mappings if you wish to expose the 
-            - 4222:4222
+        # NATS client and/or management ports
-            - 8222:8222
+        # ports:
+        #     - 4222:4222
+        #     - 8222:8222
         command: "--store memory --cluster_id faas-cluster"
         networks:
             - functions
@@ -82,8 +84,10 @@ services:
             - '-config.file=/alertmanager.yml'
         networks:
             - functions
-        ports:
+        # Uncomment the following port mapping if you wish to expose the Prometheus
-            - 9093:9093
+        # Alertmanager UI.
+        # ports:
+        #     - 9093:9093
         deploy:
             placement:
                 constraints: [node.role == manager]

docker-compose.extended.yml

@@ -32,9 +32,11 @@ services:
 
     nats:
         image: nats-streaming:0.6.0
-        ports:
+        # Uncomment the following port mappings if you wish to expose the 
-            - 4222:4222
+        # NATS client and/or management ports
-            - 8222:8222
+        # ports:
+        #     - 4222:4222
+        #     - 8222:8222
         command: "--store memory --cluster_id faas-cluster"
         networks:
             - functions
@@ -99,8 +101,10 @@ services:
             - '-config.file=/alertmanager.yml'
         networks:
             - functions
-        ports:
+        # Uncomment the following port mapping if you wish to expose the Prometheus
-            - 9093:9093
+        # Alertmanager UI.
+        # ports:
+        #     - 9093:9093
         deploy:
             resources:
                 limits:

docker-compose.yml

@@ -59,8 +59,10 @@ services:
             - '-config.file=/alertmanager.yml'
         networks:
             - functions
-        ports:
+        # Uncomment the following port mapping if you wish to expose the Prometheus
-            - 9093:9093
+        # Alertmanager UI.
+        # ports:
+        #     - 9093:9093
         deploy:
             resources:
                 limits: